CtrlK
BlogDocsLog inGet started
Tessl Logo

env-secret-detector

Env Secret Detector - Auto-activating skill for Security Fundamentals. Triggers on: env secret detector, env secret detector Part of the Security Fundamentals skill category.

38

0.96x

Quality

7%

Does it follow best practices?

Impact

96%

0.96x

Average score across 3 eval scenarios

SecuritybySnyk

Passed

No known issues

Optimize this skill with Tessl

npx tessl skill review --optimize ./planned-skills/generated/03-security-fundamentals/env-secret-detector/SKILL.md
SKILL.md
Quality
Evals
Security

Evaluation results

100%

Security Audit: Scan Codebase for Exposed Credentials

Multi-pattern secret detection coverage

Criteria
Without context
With context

Detects API keys

100%

100%

Detects passwords/credentials

100%

100%

Detects auth tokens

100%

100%

Detects cloud/AWS credentials

100%

100%

Redacts secret values

100%

100%

Structured findings report

100%

100%

Multiple files scanned

100%

100%

Broad category coverage

100%

100%

Script is executable/runnable

100%

100%

README present

100%

100%

Without context: $0.3350 · 1m 20s · 17 turns · 18 in / 5,277 out tokens

With context: $0.6358 · 2m 31s · 30 turns · 61 in / 9,119 out tokens

90%

-10%

Build a Secret Detection npm Package for CI Integration

npm-based production secret scanner

Criteria
Without context
With context

npm package structure

100%

100%

Scan script entry in package.json

100%

100%

CI-compatible exit codes

100%

100%

scan-results.json produced

100%

100%

Detects database credentials

100%

100%

Detects API/service tokens

100%

100%

Multiple files scanned

100%

100%

Secret values not exposed

100%

0%

USAGE.md with CI instructions

100%

100%

Main implementation file

100%

100%

Without context: $0.5088 · 2m 6s · 25 turns · 26 in / 8,361 out tokens

With context: $0.5707 · 2m 5s · 30 turns · 28 in / 7,521 out tokens

100%

Security Procedure: Document an Env Secret Detection Workflow

Step-by-step OWASP-aligned detection workflow

Criteria
Without context
With context

Numbered step structure

100%

100%

Covers passwords

100%

100%

Covers API keys

100%

100%

Covers tokens

100%

100%

Covers private keys

100%

100%

Security framework reference

100%

100%

Remediation steps

100%

100%

Working detection script

100%

100%

example-findings.json produced

100%

100%

Detects RSA/private key

100%

100%

Detects PAT/npm tokens

100%

100%

Secret values redacted

100%

100%

Without context: $0.5241 · 2m 51s · 20 turns · 20 in / 10,324 out tokens

With context: $1.0304 · 4m 58s · 37 turns · 366 in / 17,136 out tokens

Repository
jeremylongshore/claude-code-plugins-plus-skills
Commit

994edc4

Evaluated
Agent
Claude Code
Model
Claude Sonnet 4.6

Table of Contents

Security Audit: Scan Codebase for Exposed CredentialsBuild a Secret Detection npm Package for CI IntegrationSecurity Procedure: Document an Env Secret Detection Workflow

Is this your skill?

If you maintain this skill, you can claim it as your own. Once claimed, you can manage eval scenarios, bundle related skills, attach documentation or rules, and ensure cross-agent compatibility.

Claim skill